1.20.97.142 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
1.20.97.181	attackbots	VNC brute force attack detected by fail2ban	2020-07-05 13:11:08
1.20.97.204	attack	Blocked Thailand, hacker netname: TOT-MOBILE-AS-AP descr: TOT Mobile Co LTD descr: 89/2 Moo3 Chaengwattana Rd Thungsonghong Laksi country: TH IP: 1.20.97.204 Hostname: 1.20.97.204 Human/Bot: Human Browser: Chrome version 63.0 running on Win7	2019-07-25 21:15:08

类型

评论内容

时间

1.20.97.181

attackbots

VNC brute force attack detected by fail2ban

2020-07-05 13:11:08

1.20.97.204

attack

Blocked Thailand, hacker
netname: TOT-MOBILE-AS-AP
descr: TOT Mobile Co LTD
descr: 89/2 Moo3 Chaengwattana Rd Thungsonghong Laksi
country: TH
 IP: 1.20.97.204 Hostname: 1.20.97.204
Human/Bot: Human
Browser: Chrome version 63.0 running on Win7

2019-07-25 21:15:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.97.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33521
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.97.142.			IN	A

;; AUTHORITY SECTION:
.			282	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 21:25:22 CST 2022
;; MSG SIZE  rcvd: 104

HOST信息:

Host 142.97.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.97.20.1.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
212.110.128.74	attackspam	Sep 29 19:17:59 ny01 sshd[13845]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.110.128.74 Sep 29 19:18:01 ny01 sshd[13845]: Failed password for invalid user test from 212.110.128.74 port 43386 ssh2 Sep 29 19:25:33 ny01 sshd[15533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.110.128.74	2019-09-30 07:26:45
150.95.109.183	attackspambots	Sep 30 00:59:55 tux-35-217 sshd\[19223\]: Invalid user admin from 150.95.109.183 port 22192 Sep 30 00:59:55 tux-35-217 sshd\[19223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.109.183 Sep 30 00:59:57 tux-35-217 sshd\[19223\]: Failed password for invalid user admin from 150.95.109.183 port 22192 ssh2 Sep 30 01:04:30 tux-35-217 sshd\[19241\]: Invalid user j2deployer from 150.95.109.183 port 61606 Sep 30 01:04:30 tux-35-217 sshd\[19241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.95.109.183 ...	2019-09-30 07:37:11
140.148.227.92	attackspam	Sep 29 20:49:20 hermescis postfix/smtpd\[26486\]: NOQUEUE: reject: RCPT from unknown\[140.148.227.92\]: 550 5.1.1 \: Recipient address rejected:* from=\ to=\ proto=ESMTP helo=\	2019-09-30 07:42:16
138.118.214.71	attackspam	Port Scan detected from 138.118.214.71 (AR/Argentina/red118.214.071-ssservicios.com.ar). 4 hits in the last 280 seconds	2019-09-30 07:25:49
52.2.36.145	attack	AMAZON SCAMMERS!	2019-09-30 07:45:28
222.186.180.147	attackbots	Sep 29 20:52:39 [HOSTNAME] sshd[364]: User removed from 222.186.180.147 not allowed because not listed in AllowUsers Sep 30 00:00:36 [HOSTNAME] sshd[21752]: User removed from 222.186.180.147 not allowed because not listed in AllowUsers Sep 30 00:43:41 [HOSTNAME] sshd[26687]: User removed from 222.186.180.147 not allowed because not listed in AllowUsers ...	2019-09-30 07:56:30
119.185.11.128	attackspambots	22/tcp [2019-09-29]1pkt	2019-09-30 07:37:30
201.151.239.34	attackbots	Unauthorized SSH login attempts	2019-09-30 07:57:22
185.109.43.54	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/185.109.43.54/ GB - 1H : (91) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN204258 IP : 185.109.43.54 CIDR : 185.109.40.0/22 PREFIX COUNT : 1 UNIQUE IP COUNT : 1024 WYKRYTE ATAKI Z ASN204258 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-09-30 07:58:20
176.112.132.244	attackbots	22/tcp [2019-09-29]1pkt	2019-09-30 07:33:58
167.61.7.202	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/167.61.7.202/ US - 1H : (1540) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN6057 IP : 167.61.7.202 CIDR : 167.61.0.0/20 PREFIX COUNT : 562 UNIQUE IP COUNT : 2166016 WYKRYTE ATAKI Z ASN6057 : 1H - 2 3H - 3 6H - 7 12H - 17 24H - 35 INFO : SERVER - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-09-30 07:34:23
180.154.184.208	attackspam	445/tcp [2019-09-29]1pkt	2019-09-30 07:28:09
222.186.175.151	attack	Sep 29 19:30:42 TORMINT sshd\[8779\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Sep 29 19:30:44 TORMINT sshd\[8779\]: Failed password for root from 222.186.175.151 port 23520 ssh2 Sep 29 19:31:02 TORMINT sshd\[8779\]: Failed password for root from 222.186.175.151 port 23520 ssh2 ...	2019-09-30 07:33:43
113.160.158.39	attackbotsspam	23/tcp [2019-09-29]1pkt	2019-09-30 07:43:02
35.247.182.60	attackspam	Sep 27 17:36:38 xb3 sshd[5687]: Failed password for invalid user svn from 35.247.182.60 port 43460 ssh2 Sep 27 17:36:38 xb3 sshd[5687]: Received disconnect from 35.247.182.60: 11: Bye Bye [preauth] Sep 27 17:44:53 xb3 sshd[13786]: Failed password for invalid user admin from 35.247.182.60 port 49632 ssh2 Sep 27 17:44:53 xb3 sshd[13786]: Received disconnect from 35.247.182.60: 11: Bye Bye [preauth] Sep 27 17:49:36 xb3 sshd[13456]: Failed password for invalid user ronny from 35.247.182.60 port 35968 ssh2 Sep 27 17:49:36 xb3 sshd[13456]: Received disconnect from 35.247.182.60: 11: Bye Bye [preauth] Sep 27 17:54:05 xb3 sshd[12367]: Failed password for invalid user sonar from 35.247.182.60 port 50500 ssh2 Sep 27 17:54:06 xb3 sshd[12367]: Received disconnect from 35.247.182.60: 11: Bye Bye [preauth] Sep 27 18:08:12 xb3 sshd[15551]: Failed password for invalid user userftp from 35.247.182.60 port 37684 ssh2 Sep 27 18:08:12 xb3 sshd[15551]: Received disconnect from 35.247.182.60........ -------------------------------	2019-09-30 07:50:13

最近上报的IP列表

1.20.97.141	1.20.97.145	1.20.97.146	1.20.97.148
1.20.97.150	1.20.97.155	1.20.97.157	1.20.97.158
1.20.97.160	1.20.97.163	1.20.97.166	1.20.97.173
1.20.97.174	1.20.97.178	1.20.97.184	1.20.97.186
1.20.97.189	1.20.97.190	1.20.97.194	255.73.6.194